CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-46597

Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sPubKey parameter at dialin.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.4%

CVSS Severity

CVSS v3 Score 7.5

References

https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#11467dddc16f460db85a5e8d3a6665fb

Products affected by CVE-2024-46597

Draytek » Vigor3910 » Version: N/A

cpe:2.3:h:draytek:vigor3910:-
Draytek » Vigor3910 Firmware » Version: 4.3.2.6

cpe:2.3:o:draytek:vigor3910_firmware:4.3.2.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-46597

Products

Pricing

Contact Us